The Gallery Remote module in Menalto Gallery before 2.2.4 does not check permissions for unspecified GR commands, which has unknown impact and attack vectors.

More... (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2007-6690)